lang/ruby32-base: update to 3.2.11
Ruby 3.2.11 (2026-03-27)
Quote from release announce:
Ruby 3.2.11 has been released. This release includes an update to the zlib
gem addressing CVE-2026-27820.
This is the final release of the Ruby 3.2 series. We will not provide any
further updates, including security fixes, for the Ruby 3.2 series.
We recommend upgrading to Ruby 3.4 or 4.0.
What's Changed
* Bug #21715: Miscompilation on x86-64-v2 due to undefined behavior in
search_nonascii in string.c
* Bug #21629: Ruby-3.4.7 prints -Wdefault-const-init-field-unsafe warnings
on clang / llvm 21
driver(9): fix cdevsw/bdevsw examples
Instead of a chimera that fuses structure definition and variable
definition with an initializer (syntactically incorrect), provide an
example of an actual variable definition with an initializer.
opa: Update to 1.15.0
Changes:
v1.15.0
This release contains a mix of new features, performance improvements,
and bugfixes. Notably:
- Add logger plugin interface and file logger implementation with log rotation
- Custom HTTPAuthPlugin behavior change, all per-request authentication
logic must be moved from `NewClient()` to `Prepare()`
- AWS signing supports for web identity for assume role credentials
lint: do not warn about lossy cast from floating to integer
The check is intended to catch unintentional loss of accuracy. Having an
explicit cast in the code makes the intention clear enough.
net/lldpd: update to 1.0.21
1.0.21 [2026-03-14 22:17:53 +0100]:
- [25e90db27404] release: 1.0.21 (Vincent Bernat)
- [8bee83920123] doc: be clearer about how to install on macOS (Vincent Bernat)
- [18d8f3ef03ac] build: add a few more Docker platforms (Vincent Bernat)
- [aa1bb6253375] build: fix hardcoded ghcr.io path (Vincent Bernat)
- [479afbb6240d] daemon/priv: factor out check of authorized paths (Vincent Bernat)
- [4c5dccc97efc] doc: fix libtool invocation (Vincent Bernat)
- [5facaf317d4a] daemon: do not fallback to ioctl for wireless (Vincent Bernat)
- [6093ce4b65bb] daemon: use /sys/class/net/.../wireless to check wireless interface (Vincent Bernat)
- [753b81e060d3] daemon: only keep one privileged op to remove both socket and lock (Vincent Bernat)
- [66d67e5d145b] daemon: fix arbitrary file deletion in the privileged process (Vincent Bernat)
- [747113fa7ed1] client: fix compilation warning about unterminated strings (Vincent Bernat)
- [bf772f3193a0] doc: add NEWS entry for latest commit (Vincent Bernat)
- [375c60c1ffe7] interfaces: use ethtool link mode bits for accurate MAU type selection (#771) (Ciro Iriarte)
- [dcb62ae78e89] daemon: fix path traversal vulnerability in asroot_iface_description_os() (Vincent Bernat)
- [5e144270fde7] daemon: fix path traversal vulnerability in asroot_open() (Vincent Bernat)
[68 lines not shown]
ocaml-dune: update to 3.22.0.
3.22.0 (2026-03-18)
-------------------
### Fixed
- `Dyn.to_string` now uses a smarter way to convert floats. This ensures that
floats are printed with enough precision to round-trip and are valid OCaml
lexemes. (#12982, fixes #12980, @Alizter)
- Fix `dune install --prefix` failing with relative paths outside the workspace
like `../foo` (#12993, fixes #12241, @benodiwal)
- Place the default trace file inside the build directory at the
workspace root, rather than relative to the current directory.
(#13735, @vouillon)
- Fixed interpreting relative paths in `%{bin:..}` and `%{bin-available:..}`.
[195 lines not shown]
bind920: update to version 9.20.21.
Pkgsrc changes:
* Update checksums
Upstream changes:
BIND 9.20.21
------------
Security Fixes
~~~~~~~~~~~~~~
- [CVE-2026-1519] Fix unbounded NSEC3 iterations when validating
referrals to unsigned delegations. ``5af03a06066``
DNSSEC-signed zones may contain high iteration-count NSEC3 records,
which prove that certain delegations are insecure. Previously, a
validating resolver encountering such a delegation processed these
[52 lines not shown]
From Rui-Xiang Guo in private email
According to the c906 user manual,
it uses sync.s to ensure completion of clean operations.
Change the fence rw,rw to sync.s in the thead cache operations.